Skip to content
Snippets Groups Projects
Normal view Permalink
cwe20.c 851 B
Newer Older
Andre Maroneze's avatar
Initial commit
Andre Maroneze committed
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 
// Based on MITRE's CWE-20, demonstrative example 2
// https://cwe.mitre.org/data/definitions/20.html

#include <stdio.h>
#include <stdlib.h>

#define MAX_DIM 100

typedef struct _board_square_t {
  char color;
} board_square_t;

#define die(s) fprintf(stderr, s); exit(1)

int main() {

  /* board dimensions */
  int m,n, error;
  board_square_t *board;

  printf("Please specify the board height: \n");
  error = scanf("%d", &m);
  if ( EOF == error ){
    die("No integer passed: Die evil hacker!\n");
  }
  printf("Please specify the board width: \n");
  error = scanf("%d", &n);
  if ( EOF == error ){
    die("No integer passed: Die evil hacker!\n");
  }
  if ( m > MAX_DIM || n > MAX_DIM ) {
    die("Value too large: Die evil hacker!\n");
  }
  board = (board_square_t*) malloc( m * n * sizeof(board_square_t));
Andre Maroneze's avatar
[basic-cwe-examples] add Makefile and improvements  
Andre Maroneze committed
36 
  free(board);
Andre Maroneze's avatar
Initial commit
Andre Maroneze committed
37 38 
  return 0;
}